Try our new research platform with insights from 80,000+ expert users

Rapid7 AppSpider pros and cons

Vendor: Rapid7

3.9 out of 5

14 reviews
100% willing to recommend

Pros & Cons summary

Rapid7 AppSpider quickly detects and displays vulnerabilities upon release and supports compliance reporting for PCA and GDPR. The detailed and flexible vulnerability reporting is highly valuable. While stable and feature-rich, AppSpider is challenged by scalability for large enterprises and is slower and more costly than competitors. Issues include false positives and high RAM requirements during scans. Authentication identification is robust, but the tool could improve efficiency and affordability for better market competitiveness.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

Rapid7 AppSpider detects vulnerabilities quickly and displays them efficiently.

It manages different applications effectively and generates compliance reports for PCA/GDPR.

Reporting is highly valuable, meeting international standards and being flexible in report generation.

The automated scanning feature delivers detailed information about vulnerabilities and their solutions.

Broad authentication capabilities and high stability make Rapid7 AppSpider highly reliable.

CONS

Rapid7 AppSpider needs to improve scalability for large networks with millions of IP addresses.

The price is considered expensive compared to competitors.

Scanning speed is too slow and can take an entire day.

RAM usage during scanning can be problematic.

Provides numerous false positives compared to other solutions.

Rapid7 AppSpider Pros review quotes

Security Engineer

Mar 11, 2019

I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us.

Read full review

GK

Cyber Security Consultant at Relevance Lab

Jun 5, 2019

Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements.

Read full review

Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees

Oct 22, 2019

The most valuable feature is the reporting, which is compliant with international standards.

Read full review

Rapid7 AppSpider

Free Report: Rapid7 AppSpider Reviews and More

Learn what your peers think about Rapid7 AppSpider. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.

880,481 professionals have used our research since 2012.

Executive Manager at B2B-Solutions LLC

Nov 10, 2019

The entire solution is interactive and has a point-and-click user experience, which makes it easy to find items or drill down on information. You don't need specialized skills to use the product.

Read full review

reviewer1284219

Program Director at a financial services firm with 201-500 employees

Mar 4, 2020

I would say that it is stable, as I am not aware of any major issues.

Read full review

reviewer1327302

Security Consultant at a tech vendor with 11-50 employees

Apr 16, 2020

It is really accurate and the rate of false positives is very low.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Sep 27, 2020

When it is set up properly, it can do scanning on web apps with multiple engines automatically.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Dec 22, 2020

The setup is usually straightforward.

Read full review

Information Security Engineer at Trillium Information Security Systems

Jun 20, 2022

The initial deployment is very straightforward and simple. The product is stable if configured properly.

Read full review

Executive Manager at B2B-Solutions LLC

Sep 21, 2022

AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines.

Read full review

Show 4 more reviews (out of 14)

Rapid7 AppSpider Cons review quotes

Security Engineer

Mar 11, 2019

The product needs to be able to scale for large companies, like ours. We have millions of IP addresses that need to be scanned, and the scalability is not great.

Read full review

GK

Cyber Security Consultant at Relevance Lab

Jun 5, 2019

Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan.

Read full review

Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees

Oct 22, 2019

This price of this solution is a little bit expensive.

Read full review

Rapid7 AppSpider

Free Report: Rapid7 AppSpider Reviews and More

Learn what your peers think about Rapid7 AppSpider. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.

880,481 professionals have used our research since 2012.

Executive Manager at B2B-Solutions LLC

Nov 10, 2019

The solution is too slow. It could take a full day to scan. Competitors are much faster.

Read full review

reviewer1284219

Program Director at a financial services firm with 201-500 employees

Mar 4, 2020

The dashboard and interface are crucial and they need some improvement.

Read full review

reviewer1327302

Security Consultant at a tech vendor with 11-50 employees

Apr 16, 2020

Support response times are slow and can be improved.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Sep 27, 2020

AppSpider could improve in the area of integration. They need to add more integration opportunities.

Read full review

Agustinus DWIJOKO

Network & Security Engineer at PT. Centrin Online Prima

Dec 22, 2020

Integration could be better.

Read full review

Information Security Engineer at Trillium Information Security Systems

Jun 20, 2022

There are some glitches with stability, and it is an area for improvement.

Read full review

Executive Manager at B2B-Solutions LLC

Sep 21, 2022

AppSpider has some problems with the RAM needed while scanning.

Read full review

Show 4 more reviews (out of 14)

Product Categories

Product Categories

Static Application Security Testing (SAST)

Popular Comparisons

Popular Comparisons

SonarQube vs Rapid7 AppSpider

Checkmarx One vs Rapid7 AppSpider

Veracode vs Rapid7 AppSpider

OpenText Core Application Security vs Rapid7 AppSpider

OWASP Zap vs Rapid7 AppSpider

Acunetix vs Rapid7 AppSpider

PortSwigger Burp Suite Professional vs Rapid7 AppSpider

HCL AppScan vs Rapid7 AppSpider

Qualys Web Application Scanning vs Rapid7 AppSpider

Invicti vs Rapid7 AppSpider

See all alternatives

Product Categories

Product Categories

Static Application Security Testing (SAST)

Popular Comparisons

Popular Comparisons

SonarQube vs Rapid7 AppSpider

Checkmarx One vs Rapid7 AppSpider

Veracode vs Rapid7 AppSpider

OpenText Core Application Security vs Rapid7 AppSpider

OWASP Zap vs Rapid7 AppSpider

Acunetix vs Rapid7 AppSpider

PortSwigger Burp Suite Professional vs Rapid7 AppSpider

HCL AppScan vs Rapid7 AppSpider

Qualys Web Application Scanning vs Rapid7 AppSpider

Invicti vs Rapid7 AppSpider

See all alternatives

Related questions

129

What Application Security Solution Do You Use That Is DevOps Friendly?

14

Which is the most comprehensive open source Web Security Testing tool?

42

What is the best Application Security Testing platform?

16

When evaluating Application Security Testing, what aspect do you think is the most important to look for?

38

SAST vs. DAST: Which is better for application security testing?

31

What tools do you rely on for building a DevSecOps pipeline?

51

What does the Log4j/Log4Shell vulnerability mean for your company?

37

Checkmarx or Veracode. Which should we choose?

67

What are your recommended automated penetration testing tools?

23

What are the OWASP top 10 in 2020?